Restore Referer-Policy and wrap up MbedTLS changes

redbean will now set Referer-Policy to no-referrer-when-downgrade on text/html responses by default. There's better explanations on the bits of security redbean is offering. In short, it's 128+ for modern clients and 112+ for legacy. If the -B flag is used then it's 192+ for modern and 150+ for non-EC.
2025-05-24 06:12:27 +00:00 · 2021-08-03 22:42:17 -07:00 · 2021-08-03 22:42:17 -07:00 · df8ab0aa0c
commit df8ab0aa0c
parent 344d2dc356
32 changed files with 679 additions and 663 deletions
--- a/third_party/mbedtls/ecp.c
+++ b/third_party/mbedtls/ecp.c
@ -504,12 +504,25 @@ int mbedtls_ecp_check_budget( const mbedtls_ecp_group *grp,
 *  - size in bits
 *  - readable name
 *
+ * ELLIPTIC CURVES 101
+ *
+ *     CURVE      SECURITY  RECOMMENDED BY
+ *     ---------- --------- --------------------------------
+ *     SECP256R1  128       IANA, NIST, FRANCE, GERMANY
+ *     SECP384R1  192       IANA, NIST, FRANCE, GERMANY, NSA
+ *     X25519     112-128   IANA
+ *     X448       224       IANA
+ *     BP384R1              GERMANY
+ *     SECP521R1            FRANCE
+ *     GC512A               RUSSIA
+ *     SM2                  CHINA
+ *
 * Reminder: update profiles in x509_crt.c when adding a new curves!
 */
 static const mbedtls_ecp_curve_info ecp_supported_curves[] =
 {
-#if defined(MBEDTLS_ECP_DP_CURVE25519_ENABLED)
-    { MBEDTLS_ECP_DP_CURVE25519,   29,     256,    "x25519"            },
+#if defined(MBEDTLS_ECP_DP_SECP256R1_ENABLED)
+    { MBEDTLS_ECP_DP_SECP256R1,    23,     256,    "secp256r1"         },
 #endif
 #if defined(MBEDTLS_ECP_DP_SECP384R1_ENABLED)
    { MBEDTLS_ECP_DP_SECP384R1,    24,     384,    "secp384r1"         },
@ -517,8 +530,8 @@ static const mbedtls_ecp_curve_info ecp_supported_curves[] =
 #if defined(MBEDTLS_ECP_DP_CURVE448_ENABLED)
    { MBEDTLS_ECP_DP_CURVE448,     30,     448,    "x448"              },
 #endif
-#if defined(MBEDTLS_ECP_DP_SECP256R1_ENABLED)
-    { MBEDTLS_ECP_DP_SECP256R1,    23,     256,    "secp256r1"         },
+#if defined(MBEDTLS_ECP_DP_CURVE25519_ENABLED)
+    { MBEDTLS_ECP_DP_CURVE25519,   29,     256,    "x25519"            },
 #endif
 #if defined(MBEDTLS_ECP_DP_SECP521R1_ENABLED)
    { MBEDTLS_ECP_DP_SECP521R1,    25,     521,    "secp521r1"         },
@ -1439,6 +1452,10 @@ static int ecp_normalize_jac( const mbedtls_ecp_group *grp, mbedtls_ecp_point *p
 #if defined(MBEDTLS_ECP_NO_FALLBACK) && defined(MBEDTLS_ECP_NORMALIZE_JAC_ALT)
    return( MBEDTLS_ERR_ECP_FEATURE_UNAVAILABLE );
 #else
+#ifdef MBEDTLS_ECP_DP_SECP384R1_ENABLED
+    if ( grp->modp == ecp_mod_p384 )
+        return mbedtls_p384_normalize_jac(grp, pt);
+#endif
 #ifdef MBEDTLS_ECP_DP_SECP256R1_ENABLED
    if ( grp->modp == ecp_mod_p256 )
        return mbedtls_p256_normalize_jac(grp, pt);